Prevent HTML injection (sanitize before output)

All data being implemented in the site should NOT render html